• b944abf bump version to 2022.9.1
• ee87819 Workaround for parquet writing failure using some datetime series but not oth...
• 1a8533f Filter out numeric_only warnings from pandas (#9496)
• 803c7fd Avoid set_index(..., inplace=True) where not necessary (#9472)
• f45df2b Fix overlap so that set_index doesn't drop rows (#9423)
• 982376e Allow split_out to be None, which then defaults to 1 in `groupby().aggr...
• 6c15102 Avoid passing groupby key list of length one (#9495)
• 6ebe384 aca: Provide default for split_out (#9493)
• 024df34 Fix assigning pandas Series to column when ddf.columns.min() raises (#9485)
• 142de26 Add DataFrame and Series median method (#9483)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/setup-python's releases.

Improve error handling and messages

In scope of this release we added improved error message to put operating system and its version in the logs (actions/setup-python#559). Besides, the release

• fixes issue about specifying architecture for pypy-nightly on Windows with related pull request.
• improves error handling for Http Errors (actions/setup-python#511).
• updates minimatch (actions/setup-python#558).

v4.3.0

• Update @​actions/core to 1.10.0 version #517
• Update @​actions/cache to 3.0.4 version #499
• Only use github.token on github.com #443
• Improvement of documentation #477 #479 #491 #492

• 2c3dd9e Add OS info to the error message (#559)
• 76bbdfa Update minimatch (#558)
• 1aafadc Caching projects that use setup.py (#549)
• b80efd6 Update to latest actions/publish-action (#546)
• 5cddb27 Recommend setting python-version (#545)
• 47c4a7a fix(ci): run .github/workflows/workflow.yml on ubuntu-20.04 (#535)
• af57b64 Extend docu regarding rate limit issues. (#510)
• 4818a5a Handle download HTTP error (#511)
• 8bcd256 Add architecture input check for PyPy for Windows platform (#520)
• 13ae5bb Merge pull request #517 from rentziass/rentziass/update-actions-core
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pypa/gh-action-pypi-publish's releases.

v1.6.1

What's happened?!

There was a sneaky bug in v1.6.0 which caused Twine to be outside the import path in the Python runtime. It is fixed in v1.6.1 by updating $PYTHONPATH to point to a correct location of the user-global site-packages/ directory.

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.0...v1.6.1

v1.6.0

Anything's changed?

The only update is that the Python runtime has been upgraded from 3.9 to 3.11. There are no functional changes in this release.

Full Changelog: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.2...v1.6.0

v1.5.2

What's Improved

• Implemented the Twine transitive dependency tree pinning using pip-tools-generated constraint files. See pypa/gh-action-pypi-publish#107 and pypa/gh-action-pypi-publish#101 for details.

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.1...v1.5.2

• 5d1679f Use py3.11 user-global site-packages in PYTHONPATH
• d2a2496 Switch the runtime from Python 3.9 to Python 3.11
• d7edd4c Add user-global site-packages to $PYTHONPATH
• 8d5f27c Install Twine in the user-global site-packages
• b0dc178 Disable pip cache dir with an env var
• bbf6e0b Copy requirements to corresponding dir @ container
• 0b69a8c Document broken pkginfo==1.9.0 transitive dep
• c54db9c Integrate pip-tools-generated constraint files
• 480ec4e Inherit yamllint config from the default preset
• 5fb2f04 Drop __token__ from README code usage snippets
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 4785355 bump version to 2022.12.0
• 23cbe9a Avoid PytestReturnNotNoneWarning in test_inheriting_class (#9707)
• 945435b Remove statistics-based set_index logic from read_parquet (#9661)
• b1e468e Add support for use_nullable_dtypes to dd.read_parquet (#9617)
• f309f9f Fix flaky test_dataframe_aggregations_multilevel (#9701)
• a7efdf9 Fix map_overlap in order to accept pandas arguments (#9571)
• 99123bd Fix pandas 1.5+ FutureWarning in .str.split(..., expand=True) (#9704)
• 49b516b Enable column projection for groupby slicing (#9667)
• 8ef438b Support duplicate column cum-functions (#9685)
• 3ac3b8d Bump mypy version (#9697)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pypa/gh-action-pypi-publish's releases.

v1.5.2

What's Improved

• Implemented the Twine transitive dependency tree pinning using pip-tools-generated constraint files. See pypa/gh-action-pypi-publish#107 and pypa/gh-action-pypi-publish#101 for details.

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.1...v1.5.2

• d7edd4c Add user-global site-packages to $PYTHONPATH
• 8d5f27c Install Twine in the user-global site-packages
• b0dc178 Disable pip cache dir with an env var
• bbf6e0b Copy requirements to corresponding dir @ container
• 0b69a8c Document broken pkginfo==1.9.0 transitive dep
• c54db9c Integrate pip-tools-generated constraint files
• 480ec4e Inherit yamllint config from the default preset
• 5fb2f04 Drop __token__ from README code usage snippets
• 7bbdccd Update the mention of master with unstable/v1
• 328cf89 📝 Fix a link to the "Distribution Package" term
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• c2556fb bump version to 2022.11.1
• 5a52c83 Update ga-yaml-parser step in gpuCI updating workflow (#9675)
• 1351630 Restrict bokeh=3 support (#9673)
• 6a02bcb Updates for fastparquet evolution (#9650)
• 2297590 Revert importlib.metadata workaround (#9658)
• 0dd82eb Fix mindeps-distributed CI build to handle numpy/pandas not being insta...
• 08db480 bump version to 2022.11.0
• abf8f39 Use conda-incubator/[email protected] (#9662)
• 7990fff Update dashboard docs for queuing (#9660)
• 9fdd11d Allow bokeh=3 (#9659)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 08db480 bump version to 2022.11.0
• abf8f39 Use conda-incubator/[email protected] (#9662)
• 7990fff Update dashboard docs for queuing (#9660)
• 9fdd11d Allow bokeh=3 (#9659)
• 98b878d Run upstream build with Python 3.10 (#9655)
• 34a1e88 Avoid pandas constructors in dask.dataframe.core (#9570)
• bfe07f6 Fix sort_values with Timestamp data (#9642)
• 90eec29 Remove import dask as d from docstrings (#9644)
• 9d624c6 Pin pyyaml version in mindeps testing (#9640)
• 101ecfd Add pre-commit to catch breakpoint() (#9638)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's releases.

v6.1.1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v6.1.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v6.0.1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v6.0.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v6.0.0b2

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v6.0.0b1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.3.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Sourced from sphinx's changelog.

Release 6.1.1 (released Jan 05, 2023)

Bugs fixed

• #11091: Fix util.nodes.apply_source_workaround for literal_block nodes with no source information in the node or the node's parents.

Release 6.1.0 (released Jan 05, 2023)

Dependencies

• Adopted the Ruff_ code linter.

  .. _Ruff: https://github.com/charliermarsh/ruff

Incompatible changes

• #10979: gettext: Removed support for pluralisation in get_translation. This was unused and complicated other changes to sphinx.locale.

Deprecated

• sphinx.util functions:

  • Renamed sphinx.util.typing.stringify() to sphinx.util.typing.stringify_annotation()
  • Moved sphinx.util.xmlname_checker() to sphinx.builders.epub3._XML_NAME_PATTERN

  Moved to sphinx.util.display:

  • sphinx.util.status_iterator
  • sphinx.util.display_chunk
  • sphinx.util.SkipProgressMessage
  • sphinx.util.progress_message

  Moved to sphinx.util.http_date:

  • sphinx.util.epoch_to_rfc1123
  • sphinx.util.rfc1123_to_epoch

  Moved to sphinx.util.exceptions:

  • sphinx.util.save_traceback

... (truncated)

• 77aaa86 Bump to 6.1.1 final
• 476c115 Suppress ValueError in apply_source_workaround (#11092)
• c80d656 Bump version
• 4e1004a Bump to 6.1.0 final
• a2176d4 Fix deprecation warnings
• 2c104e9 Merge branch '6.0.x'
• a27d262 Bump to 6.0.1 final
• 821569e Add note for Pygments
• 222d366 imgmath: Fix relative file path (#10965)
• c499f66 Add SIM113 lint (#11057)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/setup-python's releases.

Add support to install multiple python versions

In scope of this release we added support to install multiple python versions. For this you can try to use this snippet:

    - uses: actions/setup-python@v4
      with:
        python-version: |
            3.8
            3.9
            3.10

Besides, we changed logic with throwing the error for GHES if cache is unavailable to warn (actions/setup-python#566).

Improve error handling and messages

In scope of this release we added improved error message to put operating system and its version in the logs (actions/setup-python#559). Besides, the release

• fixes issue about specifying architecture for pypy-nightly on Windows with related pull request.
• improves error handling for Http Errors (actions/setup-python#511).
• updates minimatch (actions/setup-python#558).

v4.3.0

• Update @​actions/core to 1.10.0 version #517
• Update @​actions/cache to 3.0.4 version #499
• Only use github.token on github.com #443
• Improvement of documentation #477 #479 #491 #492

• 5ccb29d Install multiple python versions (#567)
• c3e0339 Update action to use reusable workflows (#569)
• 206e984 refactor: Use early return pattern to avoid nested conditions (#566)
• 2c3dd9e Add OS info to the error message (#559)
• 76bbdfa Update minimatch (#558)
• 1aafadc Caching projects that use setup.py (#549)
• b80efd6 Update to latest actions/publish-action (#546)
• 5cddb27 Recommend setting python-version (#545)
• 47c4a7a fix(ci): run .github/workflows/workflow.yml on ubuntu-20.04 (#535)
• af57b64 Extend docu regarding rate limit issues. (#510)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 495a4be bump version to 2022.12.1
• dcc7777 Add zarr to Python 3.11 CI environment (#9771)
• 1ac0b11 Support dtype_backend="pandas|pyarrow" configuration (#9719)
• 936d9f7 Add support for Python 3.11 (#9708)
• 0d8e12b Support cupy.ndarray to cudf.DataFrame dispatching in dask.dataframe (#...
• d943293 Make filesystem-backend configurable in read_parquet (#9699)
• d2c9e39 Serialize all pyarrow extension arrays efficiently (#9740)
• 7a0e873 Bump actions/checkout from 3.1.0 to 3.2.0 (#9753)
• 9137dad Fix bug when repartitioning with tz-aware datetime index (#9741)
• 520472c Fix url link typo in collection backend doc (#9748)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from black's releases.

22.12.0

Preview style

• Enforce empty lines before classes and functions with sticky leading comments (#3302)
• Reformat empty and whitespace-only files as either an empty file (if no newline is present) or as a single newline character (if a newline is present) (#3348)
• Implicitly concatenated strings used as function args are now wrapped inside parentheses (#3307)
• Correctly handle trailing commas that are inside a line's leading non-nested parens (#3370)

Configuration

• Fix incorrectly applied .gitignore rules by considering the .gitignore location and the relative path to the target file (#3338)
• Fix incorrectly ignoring .gitignore presence when more than one source directory is specified (#3336)

Parser

• Parsing support has been added for walruses inside generator expression that are passed as function args (for example, any(match := my_re.match(text) for text in texts)) (#3327).

Integrations

• Vim plugin: Optionally allow using the system installation of Black via let g:black_use_virtualenv = 0(#3309)

22.10.0

Highlights

• Runtime support for Python 3.6 has been removed. Formatting 3.6 code will still be supported until further notice.

Stable style

• Fix a crash when # fmt: on is used on a different block level than # fmt: off (#3281)

Preview style

... (truncated)

Sourced from black's changelog.

22.12.0

Preview style

• Enforce empty lines before classes and functions with sticky leading comments (#3302)
• Reformat empty and whitespace-only files as either an empty file (if no newline is present) or as a single newline character (if a newline is present) (#3348)
• Implicitly concatenated strings used as function args are now wrapped inside parentheses (#3307)
• Correctly handle trailing commas that are inside a line's leading non-nested parens (#3370)

Configuration

• Fix incorrectly applied .gitignore rules by considering the .gitignore location and the relative path to the target file (#3338)
• Fix incorrectly ignoring .gitignore presence when more than one source directory is specified (#3336)

Parser

• Parsing support has been added for walruses inside generator expression that are passed as function args (for example, any(match := my_re.match(text) for text in texts)) (#3327).

Integrations

• Vim plugin: Optionally allow using the system installation of Black via let g:black_use_virtualenv = 0(#3309)

22.10.0

Highlights

• Runtime support for Python 3.6 has been removed. Formatting 3.6 code will still be supported until further notice.

Stable style

• Fix a crash when # fmt: on is used on a different block level than # fmt: off (#3281)

... (truncated)

• 2ddea29 Prepare release 22.12.0 (#3413)
• 5b1443a release: skip bad macos wheels for now (#3411)
• 9ace064 Bump peter-evans/find-comment from 2.0.1 to 2.1.0 (#3404)
• 19c5fe4 Fix CI with latest flake8-bugbear (#3412)
• d4a8564 Bump sphinx-copybutton from 0.5.0 to 0.5.1 in /docs (#3390)
• 2793249 Wordsmith current_style.md (#3383)
• d97b789 Remove whitespaces of whitespace-only files (#3348)
• c23a5c1 Clarify that Black runs with --safe by default (#3378)
• 8091b25 Correctly handle trailing commas that are inside a line's leading non-nested ...
• ffaaf48 Compare each .gitignore found with an appropiate relative path (#3338)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pypa/gh-action-pypi-publish's releases.

v1.6.4

oh, boi! again?

This is the last one tonight, promise! It fixes this embarrassing bug that was actually caught by the CI but got overlooked due to the lack of sleep. TL;DR GH passed $HOME from the external env into the container and that tricked the Python's site module to think that the home directory is elsewhere, adding non-existent paths to the env vars. See #115.

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.3...v1.6.4

v1.6.3

Another Release!? Why?

In pypa/gh-action-pypi-publish#112, it was discovered that passing a $PATH variable even breaks the shebang. So this version adds more safeguards to make sure it keeps working with a fully broken $PATH.

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.2...v1.6.3

v1.6.2

What's Fixed

• Made the $PATH and $PYTHONPATH environment variables resilient to broken values passed from the host runner environment, which previously allowed the users to accidentally break the container's internal runtime as reported in pypa/gh-action-pypi-publish#112

Internal Maintenance Improvements

• Added a devpi-based smoke-test GitHub Actions CI/CD workflow by @​sesdaile-varmour in pypa/gh-action-pypi-publish#111

New Contributors

• @​sesdaile-varmour made their first contribution in pypa/gh-action-pypi-publish#111

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.1...v1.6.2

v1.6.1

What's happened?!

There was a sneaky bug in v1.6.0 which caused Twine to be outside the import path in the Python runtime. It is fixed in v1.6.1 by updating $PYTHONPATH to point to a correct location of the user-global site-packages/ directory.

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.0...v1.6.1

v1.6.0

Anything's changed?

The only update is that the Python runtime has been upgraded from 3.9 to 3.11. There are no functional changes in this release.

Full Changelog: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.2...v1.6.0

v1.5.2

What's Improved

• Implemented the Twine transitive dependency tree pinning using pip-tools-generated constraint files. See pypa/gh-action-pypi-publish#107 and pypa/gh-action-pypi-publish#101 for details.

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.1...v1.5.2

• c7f29f7 🐛 Override $HOME in the container with /root
• 644926c 🧪 Always run smoke testing in debug mode
• e71a4a4 Add support for verbose bash execusion w/ $DEBUG
• e56e821 🐛 Make id always available in twine-upload
• c879b84 🐛 Use full path to bash in shebang
• 57e7d53 🐛Ensure the default $PATH value is pre-loaded
• ce291dc 🎨🐛Fix the branch @ pre-commit.ci badge links
• 102d8ab 🐛 Rehardcode devpi port for GHA srv container
• 3a9eaef 🐛Use different ports in/out of GHA containers
• a01fa74 🐛 Use localhost @ GHA outside the containers
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx-rtd-theme's changelog.

1.1.1

Fixes

• Fix wrapping bug on cross references (#1368)

.. _release-1.1.0:

1.1.0

Dependency Changes

Many documentation projects depend on sphinx-rtd-theme without specifying a version of the theme (unpinned) while also depending on unpinned versions of Sphinx. The latest version of sphinx-rtd-theme ideally always supports the latest version of Sphinx, but this is now guaranteed.

This release adds upper bounds to direct dependencies Sphinx and docutils which will safeguard from mixing with possibly incompatible future versions of Sphinx & docutils.

• Sphinx versions supported: 1.6 to 5.2.x
• Sphinx<6 (#1332)
• docutils<0.18 (unchanged, but will be bumped in an upcoming release)

Features

• Nicer styles for (#967)
• New styling for breadcrumbs (#1073)

Fixes

• Suffixes in Sphinx version caused build errors (#1345)
• Table cells with multiple paragraphs gets wrong formatting (#289)
• Definition lists rendered wrongly in api docs (#1052)
• Citation not styled properly (#1078)
• Long URLs did not wrap (#1193)

Minor Changes

• Sphinx 5.2 added to test matrix (#1348)
• Python 3.10 added to test matrix (#1334)
• Supplemental Docker setup for development (#1319)
• Most of setup.py migrated to setup.cfg (#1116)
• Jinja2 context variable sphinx_version_info is now (major, minor, -1), the patch component is always -1. Reason: It's complicated. (#1345)

... (truncated)

• f854c89 Bugfix release 1.1.1 (#1371)
• a6ed75f Do not overflow object cross references (#1369)
• d90440a Bump to version 1.1.0 (#1367)
• 53ec9f8 Release 1.1.0b3 (#1361)
• 7771d05 Remove Jinja2 dependency (#1360)
• 2c31b73 Release 1.1.0b1 + 1.1.0b2 (bump versions with bump2version) (#1352)
• c6fa4e7 Move context logic for layout.html to jinja (#1356)
• 20607e8 Additions to Tox and Circle CI matrix (#1349)
• b33f27c Adds changelog for 1.1.0alpha1 (#1353)
• b98a7de Translation updates: Pull translations from transifex, push new sources (#1354)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)